CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-20218

Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/traceroute process. An authenticated remote attacker can cause a Denial of Service due via the loop counter variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.4%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

https://seclists.org/fulldisclosure/2020/May/30
https://seclists.org/fulldisclosure/2021/May/1
https://seclists.org/fulldisclosure/2020/May/30
https://seclists.org/fulldisclosure/2021/May/1

Products affected by CVE-2020-20218

Mikrotik » Routeros » Version: 6.44.6

cpe:2.3:o:mikrotik:routeros:6.44.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-20218

Products

Pricing

Contact Us